# vmimages
based on https://samleathers.com/posts/2022-02-11-my-new-network-and-sops.html

## Create new SSH HOST KEYS

sudo ssh-keygen -q -N "" -t rsa -b 4096 -f /etc/ssh/ssh_host_rsa_key
sudo ssh-keygen -q -N "" -t ed25519 -f /etc/ssh/ssh_host_ed25519_key

## Local
`nix-shell -p ssh-to-age --run 'cat /etc/ssh/ssh_host_ed25519_key.pub | ssh-to-age'`
or in nix develop
`cat /etc/ssh/ssh_host_ed25519_key.pub | ssh-to-age'`

## Add key to .sops.yaml

## rekey a file
`sops updatekeys hosts/wsl2/secrets.yaml`